General info
This service involves a comprehensive deployment of Defender for Identity within your organization's infrastructure, tailored to your specific environment.
Useful links
Related files
Related products
| Long description | This service involves a comprehensive deployment of Defender for Identity within your organization's infrastructure, tailored to your specific environment. |
| Active | 1 |
Description #
Microsoft Defender for Identity is a critical security solution designed to provide deep visibility into user and entity activities across your network. By analyzing authentication and authorization signals, Defender for Identity identifies potential threats and suspicious behaviors, enabling swift incident response.
Once deployed, Defender for Identity operates as an integral component of your security ecosystem, leveraging advanced machine learning algorithms to discern normal user behaviors from anomalies. It scrutinizes authentication protocols, scrutinizing for irregularities that may indicate potential security breaches or unauthorized access attempts.
Through this implementation, your organization gains an elevated level of visibility and control over its digital landscape. It empowers your security team with the tools and insights necessary to detect and respond to potential threats with precision and efficiency.
IT Partner responsibilities #
- Perform a detailed assessment of the tenant and determine what resources you need for your Microsoft Defender for Identity sensors.
- Configure Defender for Identity settings based on the assessment, ensuring optimal alignment with the organization's environment.
- Implement monitoring protocols to detect and respond to potential threats identified by Defender for Identity.
Client Responsibilities #
- Grant necessary access and permissions to the IT Partner for the deployment process.
- Collaborate with the IT Partner during the configuration phase, providing insights into specific environment requirements.
Prerequisites #
- Enterprise Mobility + Security E5 (EMS E5/A5), Microsoft 365 E5 (M365 E5/A5/G5) or Microsoft 365 E5/A5/G5 Security. Standalone Defender for Identity licenses are also available.
For more information about license requirements, see Licensing and privacy.
Plan #
- Plan Defender for Identity Capacity.
- Create a Defender for Identity instance.
- Connect an instance to Windows Server Active Directory.
- Install a Defender for Identity sensors.
- Set up the portal and setting preferences.
Success criteria #
- Enhanced visibility into user and entity activities, enabling proactive threat detection.
- Swift incident response capabilities, reducing potential security risks.
- Integration of Defender for Identity into the existing security ecosystem, ensuring seamless operation alongside other security tools.